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(54) Electronic casino gaming system with authentication and security 



(57) A casino gaming apparatus, comprising: 
a casino game console; a video display unit; a first mem- 
ory (13) disposed in said casino game console; a sec- 
ond memory (1 8) comprising a read/write memory, said 
second memory having gaming data stored therein; and 
a processor (12) disposed in said casino game console 
and being operatively coupled to said video display unit, 



said first memory (13) and said second memory (18), 
said processor (12) causing said gaming data to be 
checked based on a comparison of data generated by 
said processor from said gaming data with data previ- 
ously generated from known gaming data, said proces- 
sor utilizing a hash function in checking said gaming da- 
ta, and said processor (12) causing a remedial action to 
be taken based on said checking of said gaming data. 
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Description 

BACKGROUND OF THE INVENTION 
Field of the Invention 

[0001] This Invention relates to microprocessor based 
gaming Systems used In gambling casinos. 

Brief Description of the Prior Art 

[0002] Microprocessor based gaming systems are 
known which are used in gambling casinos to augment 
the traditional slot machine games (e.g. three reel single 
or multiline games) and card games, such as poker and 
black jack. In a typical gaming system of this type, a mi- 
croprocessor based system includes both hardware and 
software components to provide the game playing ca- 
pabilities. The hardware components Include a video 
display for displaying the game play, mechanical switch- 
es for enabling player selection of additional cards or 
game play choices, coin acceptors and detectors and 
the electronic components usually found in a microproc- 
essor based system, such as random access memory 
(RAM), read only memory (ROM), a processor and one 
or more busses. The software components include the 
initialization software, credit and payout routines, the 
game Image and rules data set, and a random number 
generator algorithm. In order to be acceptable for casino 
use, an electronic gaming system must provide both se- 
curity and authentication for the software components. 
For this reason, gaming commissions have heretofore 
required that all software components of an electronic 
gaming system be stored in unalterable memory, which 
is typically an unalterable ROM. In addition, a copy of 
the contents of the ROM or a message digest of the con- 
tents (or both) are nomrialty kept on file in a secure lo- 
cation designated by the gaming commission so that the 
contents of an individual ROM removed from a gaming 
machine can be verified against the custodial version. 
[0003] In a typical arrangement, a message digest of 
the ROM contents is initially generated prior to the in- 
stallation of the ROM in the machine by using a known 
algorithm usually referred to as a hash function. A hash 
function is a computation procedure that produces a 
fixed-size string of bits from a variable-size digital input. 
The fixed-sized string of bits is termed the hash value. 
If the hash function is difficult to invert — termed a one- 
way hash function » the hash function Is also termed a 
message digest function, and the result is termed the 
message digest. The message digest is unique to any 
given variable size input data set, i.e., the game data 
set stored in the ROM. When it becomes necessary to 
later authenticate the ROM from any given machine, the 
ROM is physically removed from the game console and 
the message digest of the ROM contents is computed 
directly from the ROM using the original hash function. 
The computed message digest, is compared with the 



message digest on file at the designated custodial loca- 
tion (typically in the casino itself). This procedure is typ- 
ically carried out whenever a machine produces a payoff 
beyond a given threshold value. If the two message di- 
5 gests match, then the contents of the ROM are consid- 
ered to be authenticated (verified) and the payout is 
made to the player. 

[0004] While such electronic casino gaming systems 
have been found to be useful in promoting casino game . 

10 play, the restriction requiring that the casino game pro- 
gram be stored in unalterable ROM memory, leads to a 
number of disadvantageous limitations. First, due to the 
limited capacity of the ROM storage media traditionally 
used to hold the program, the scope of game play avail- 

15 able with such systems Is severely limited. For sophis- 
ticated games using motion video and audio multi-me- 
dia elements, much more memory capacity, on the order 
of hundreds of megabytes, is necessary. However, 
physical verification of such a large quantity of physical 

20 devices is not practical, and has thus far been an im- 
pediment to creating sophisticated games with more 
player appeal. Second, the authentication check is only 
conducted on a limited basis (usually after a jackpot) or 
other significant winning game outcome, and the au- 

25 thentication procedure requires that game play be halt- 
ed until the ROM contents have been found to be au- 
thentic. 

SUIVIMARY OF THE INVENTION 

30 

[0005] The Invention comprises an electronic casino 
gaming system which greatly expands casino game 
play capability and enhances security and authentica- 
tion capabilities. More particularly, the invention com- 

35 prises an electronic casino gaming system and method 
having greatly expanded mass storage capability for 
storing a multiplicity of high resolution, high sound qual- 
ity casino type games, and provides enhanced authen- 
tication of the stored game program information with a 

40 high security factor. 

[0006] According to a first aspect of the invention, au- 
thentication of a casino game data set is carried out with- 
in the casino game console using an authentication pro- 
gram stored in an unalterable ROM physcally located 

45 within the casino game console. The casino game data 
set and a unique signature are stored in a mass storage 
device, which may comprise a read only unit or a read/ 
write unit and which may be physbally located either 
within the casino game console or remotely located and 

50 linked to the casino game console over a suitable net- 
work. The authentication program stored in the unalter- 
able ROM performs an authentication check on the ca- 
sino game data set at appropriate times, such as prior 
to commencement of game play, at periodic intervals or 

55 upon demand. At appropriate occasions, the contents 
of the unalterable ROM can be verified by computing 
the message digest of the unalterable ROM contents 
and comparing this computed message digest with a se- 
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curely stored copy of the message digest computed 
from the ROM contents prior to installation in the casino 
game console. 

[0007] From a process standpoint, this aspect of the 
invention comprises a method of authenticating a data 
set of a casino style game which consists of two phases: 
a game data set preparation phase and a game data set 
checking phase. In the game data set preparation 
phase, the method proceeds by providing a data set for 
a casino game, computing a first abbreviated bit string 
unique to the casino game data set, encrypting the first 
abbreviated bit string to provide an encrypted signature 
of the casino game data set, and storing the casino 
game data set and the signature in a mass storage de- 
vice. The first abbreviated bit string is preferably com- 
puted using a hash function to produce a message di- 
gest of the casino game data set. The signature Is then 
encrypted from the message digest. After storage of the 
game data set and unique signature, this information Is 
installed in a casino game console. The casino game 
data set checking phase proceeds by computing a sec- 
ond abbreviated bit string from the stored casino game 
data set using the same hash function, decrypting the 
stored encrypted signature to recover the first abbrevi- 
ated bit string, and comparing the first and second ab- 
breviated bit strings to detemnine whether the two 
strings match. If a match does occur, the casino game 
data set Is deemed authentic; if there is no match, au- 
thentication is denied and game play is prohibited. 
[0008] The encryption/decryption process is prefera- 
bly performed-using a private key/public key technique 
In which the first abbreviated bit string is encrypted by 
the game manufacturer using a private encryption key 
maintained in the custody of the game manufacturer. 
The decryption of the signature is performed using a 
public key which Is contained in an unalterable read only 
memory element located in the game console, along 
with the casino game data set. The casino game data 
set is preferably stored In a mass storage device, such 
as a magnetic or CD-ROM disk drive unit or a network 
file unit, the selected unit having a relatively large ca- 
pacity. The actual size of the mass storage device will 
depend upon the casino game storage requirements 
and can be tailored to any specific application. 
[0009] Each time a casino game data set Is trans- 
ferred from the mass storage device to the main memory 
of the system, the authentication routine is run. The au- 
thentication routine can also be means of an operator 
switch mounted in the game console or remotely via a 
network. Consequently, the authenticity of the data set 
can be automatically checked whenever the transfer oc- 
curs and at other appropriate times. 
[0010] In order to detect attempts to tamper with the 
contents of the unalterable read only memory element 
located in the game console, a message digest comput- 
ed for the authentication program stored therein is 
stored in a secure manner in a different location from 
the game console, such as the casino operator's secu- 



rity facilities or the facilities of a gaming commission (or 
both). The authenticity of the unalterable read only 
memory element is checked in the same way as that 
now performed in prior art devices: viz. computing the 
s message digest directly from the unalterable read only 
memory device, and comparing the message digest 
thus computed with the custodial version. 
[0011] From an apparatus standpoint, the first aspect 
of the invention comprises an electrons casino gaming 
10 system having means for providing authentication of a 
game data set of a casino type game prior to permitting 
game play, the system Including first means for storing 
a casino game data set and a signature of the casino 
game data set, the signature comprising an encrypted 
IS version of a unique first abbreviated bit string computed 
from the casino game data set; second means for stor- 
ing an authentication program capable of computing a 
second abbreviated bit string from the casino game data 
set stored in the first storing means and capable of de- 
crypting the encrypted signature stored in the first stor- 
ing means to recover the first abbreviated bit string; 
processing means for enabling the authentteatlon pro- 
gram to compute an abbreviated bit string from the ca- 
sino game data set stored in the first storing means and 
for enabling the authentication program to decrypt the 
encrypted signature; and means for comparing the com- 
puted second abbreviated bit string with the decrypted 
abbreviated bit string to determine whether a match is 
present. The first storing means preferably comprises a 
mass storage device, such as a disk drive unit, a 
CD-ROM unit or a network storage unit. The second 
storing means preferably comprises an unalterable read 
only memory in which the authentication program is 
stored. 

[0012] According to a second aspect of the Invention, 
the authentication program stored in the unalterable 
ROM located within the casino game console is used to 
test the authenticity of ail other programs and fixed data 
stored in memory devices in the electronic casino gam- 
ing system, such as a system boot ROM, memory de- 
vices containing the operating system program, system 
drivers and executive/loader programs, and other mem- 
ory devices Incorporated into the electronic casino 
game system architecture. The contents of each such 
memory devtoe, whether program infomriatlon or fixed 
data, Include signatures encrypted from message di- 
gests computed using a hash function from the original 
program information or fixed data set. Upon system In- 
itialization, the authentication program In the unalterable 
ROM is used to authenticate the individual memory de- 
vice contents in essentially the same fashion as that 
used to authentksate the casino game data sets. More 
specifically, the message digest for the given program 
or fixed data set is computed using the same hash func- 
tion originally used to produce the message digest for 
that program or fixed data set. The encrypted signature 
is decrypted using the proper decryption progreun and 
decryption key to recover the message digest. The two 
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versions of the message digest are then compared and, 
if found to be matching, the concerned program or fixed 
data set is deemed authentic and is permitted to be used 
by the system. Once all of the concerned programs and 
fixed data sets have been so authenticated, the casino 
game data set authentication procedure is run, after 
which game play is permitted (provided a match occurs). 
[0013] From a process standpoint, this second aspect 
of the invention comprises a method of authenticating a 
program or data set of a casino style game which con- 
sists of two phases: a program or fixed data set prepa- 
ration phase, and a program or fixed data set checking 
phase. In the program or fixed data set preparation 
phase, the method proceeds by providing a program or 
fixed data set for a casino game, computing a first ab- 
breviated bit string unique to the program or fixed data 
set, encrypting the first abbreviated bit string to provide 
an encrypted signature of the program or fixed data set, 
and storing the program or fixed data set and the signa- 
ture In a memory device. The first abbreviated bit string 
is preferably computed using a hash function to produce 
a message digest of the program or fixed data set. The 
signature is then encrypted from the message digest. 
Afterstorage of the program orflxed data set and unique 
signature in the memory device, the memory device is 
installed in a casino game console. The casino game 
program or fixed data set checldng phase proceeds by 
computing a second abbreviated bit string from the 
stored casino game program or fixed data set stored in 
the memory device using the same hash function, de- 
crypting the encrypted signature stored In the memory 
device to recover the first abbreviated bit string, and 
comparing the first and second abbreviated bit strings 
to detemnlne whether the two strings match. If a match 
does occur, the casino game program or fixed data set 
is deemed authentic; if there is no match, authentication 
Is denied and use of that casino game program or fixed 
data set is prohibited. 

[0014] The authentication routine is run each time a 
given casino game program or fixed data set needs to 
be called or used. The authentication routine can also 
be run automatically on a periodic basis, or on demand 
-either locally by means of an operator switch mounted 
in the casino game console or remotely via a network. 
Consequently, the authenticity of the casino game pro- 
gram or fixed data set can be automatically checked 
whenever use of that program or fixed data set is re- 
quired and at other appropriate times, such as in the 
course of a gaming commission audit. 
[0015] From an apparatus standpoint, this second as- 
pect of the invention comprises an electronic casino 
gaming system for providing authentication of a casino 
game program or fixed data set prior to permitting sys- 
tem use of that casino game program or fixed data set, 
the system Including first means for storing a casino 
game program or fixed data set and a signature of the 
casino game program orflxed data set; the signature 
comprising an encrypted version of a unique first abbre- 



viated bit string computed from the casino game pro- 
gram orflxed data set; second means for storing an au- 
thentication program capable of computing a second 
abbreviated bit string from the casino game program or 
5 fixed data set stored in the first storing means and ca- 
pable of decrypting the encrypted signature stored in the 
first storing means to recover the first abbreviated bit 
string; processing means for enabling the authentication 
program to compute an abbreviated bit string from the 
10 casino game program or fixed data set stored in the first 
storing means and for enabling the authentication pro- 
gram to decrypt the encrypted signature; and means for 
comparing the computed second abbreviated bit string 
with the decrypted abbreviated bit string to determine 

IS whether a match Is present. The first storing means pref- 
erably comprises a memory device, such as a read only 
memory or random access memory. The second storing 
means preferably comprises an unalterable read only 
memory in which the authentication program is stored. 

20 [001 6] Electronic casino game systems incorporating 
the invention provide a vastly expanded capacity for 
more sophisticated and attractive casino-style games, 
while at the same time Improving the authenttoatton of 
the games without compromising security. In addition, 

2S casino game systems incorporating the invention pro- 
vide great flexibility In changing casino game play, since 
the casino game data sets representing the various 
games can be stored in alterable media rather than read 
only memory units as with present casino game sys- 

50 tems. 

[001 7] By separating th e authentication process from 
the casino game data set storage, the invention affords 
secure distribution and execution of program code and 
data, regardless of the particular distribution or storage 

55 technique employed. More specifically, the invention al- 
lows the casino game data set to reside in any fonm of 
secondary storage media, such as the traditional ROM 
storage, hard magnetic disk drives and CD-ROM drives, 
or networked file systems. So long as the authentbation 

^0 procedure conducted on the game data set is performed 
using the authentk:ation program stored in an unaltera- 
ble ROM, and so long as that ROM can be verified reli- 
ably, any casino game data set can be loaded from any 
source and can be verified by the system at any time: 
either prior to use, during run-time, periodically during 
run-time or upon demand. The large quantities of stor- 
age that can be made available in a secure fashion using 
the invention, facilitates the creation of casino gaming 
systems offering both an Increased diversity of games, 

50 and individual games of superior quality. In addition, the . 
authentication of all casino game program and fixed da- 
ta software ensures the integrity of all system software 
both prior to game play and thereafter at periodk: or ran- 
dom intervals. 

55 [001 8] For a fuller understanding of the nature and ad- 
vantages of the invention, reference should be had to 
the ensuing detailed description taken in conjunction 
with the accompanying drawings. 
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BRIEF DESCRIPTION OF THE DRAWINGS 
[0019] 

FIG. 1 is a block diagram of a system incorporating s 
the invention; 

FIG. 2 is a schematic diagram illustrating the con- 
tents of the read only memory and the mass storage 
device; 

FIG. 3 is a more detailed schematic view of the au- io 
thentication program stored in the ROM and the 
game data stored in the mass storage unit; 
FIG. 4 Is a diagram Illustrating the preparation of the 
game data set; 

FIG. 5 is a diagram Illustrating the authentication 
procedure for the game data set; and 
FIG. 6 is a diagram illustrating an alternative ap- 
proach to the secure loading of sofhvare into the 
system. 

20 

DETAILED DESCRiPTION OF THE PREFERRED 
EMBODIMENTS 

[0020] Turning now to the drawings, FIG. 1 is a block 
diagram of an electronic casino gaming system incor- 2S 
porating the Invention. As seen in this figure, the system 
consists of several system components under software 
control. These system components include a microproc- 
essor 12, whk;h may comprise any general purpose mi- 
croprocessor, such as a Pentium-based microprocessor 30 
from Intel Corporation. A main memory unit 13 is pro- 
vided, which is typically a random access memory hav- 
ing a capacity of between 32 and 64 megabytes for stor- 
ing the majority of programs and graphics elements dur- 
ing game play. A system boot ROM 14 provides the in- 35 
Itialization software required when power is first applied 
to the system. ROM 14 contains additional programs in 
read only form, including the operating system, related 
drivers and the authentication software described in de- 
tail beiow. A nonvolatile RAM 1 7 is a battery backed stat- 
ic RAM capable of maintaining Its contents through pow- 
er cycling. NV RAM 1 7 stores significant information re- 
lating to game play, such as the number of player cred- 
its, the last game outcome and certain diagnostic and 
error Infomiation not criticat to an understanding of the 
invention. 

[0021] A mass storage unit implemented in the Fig. 1 
system as a magnetic hard disk drive unit 18 is coupled 
to and controlled by a disk subsystem 1 9 of conventional 
design and operation. Disk drive unit 18 provides stor- so 
age for the game specific data set, which includes both 
program data and image data specifying the rules of the 
various different casino games or single casino game 
variations, and the types of images and image sequenc- 
es to be displayed to the game players. The size of the 55 
disk drive unit 18 is a function of the number of games 
and game variations provided for a given system, as well 
as the amount of data required for each specific game. 



In general, the more motion video designed into a par- 
ticular casino game, the more storage required for that 
casino game software. A disk drive unit 18 with a 4-gi- 
gabyte capacity will usually provide sufficient storage 
capacity. Disk subsystem 1 9 comprises a disk controller 
connected to a PCI bus 20 for controlling the disk drive 
unit 18. Controller 19 preferably supports SCSI-2, with 
options of fast and wide. It should be noted that a 
number of different types of locally-based disk drive 
units may be used In the Fig. 1 system, Including a 
CD-ROM storage unit. Also, the mass storage unit need 
not be physically located within the game console along 
with the other elements depicted in Fig. 1 : the mass stor- 
age unit may be located remotely from the game con- 
sole and coupled thereto by means of an appropriate 
network, such as an ethernet, an R5232 link, or some 
other hard-wired or wireless network link. This latter al- 
ternate arrangement is indk:ated by the Inclusion of a 
network subsystem 21 of appropriate configuration and 
functional characteristics, which may have ethernet, 
R5232 serial, or other network compatibility. 
[0022] A video subsystem 22 is coupled to the PCI 
bus and provides the capability of displaying full color 
still images and MPEG movies with a relatively high 
frame rate (e.g. 30 frames per second) on an appropri-" 
ate monitor (not shown). Optional 3D texture mapping 
may be added to this system, if desired. 
[0023] A sound subsystem 23 having a stereo sound 
playback capability with up to 1 6 bit CD quality sound is 
coupled to an ISA bus 24. A general purpose input/out- 
put unit 25 provides interfaces to the game mechanical 
devices (not illustrated) such as manually actuatable 
switches and display lights. A first bridge circuit 27 pro- 
vides an interface between microprocessor 12, ROM 
14, main memory 13 and PCI bus 20. Bridge circuit 27 
is preferably a TRITON chip set available from INTEL 
Corporation. A second bridge circuit 28 provides an in- 
terface between the PCI bus 20 and the ISA bus 24. 
Bridge circuit 28 is preferably a type 82378 chip availa- 
ble from Intel Corporation. 

[0024] Fig. 2 illustrates the types of information stored 
in the system ROM 14 and the mass storage unit As 
seen in Fig. 2, the ROM unit 14 used In the Fig. 1 system 
comprises two separate ROM elements: ROM 29 and 
ROM 30. ROM 29 must be an unalterable devk^e, such 
as a Toshiba type C53400 512Kx8 bit mask pro- 
grammed ROM. ROM 30 is preferably an unalterable 
device like ROM 29, but may comprise a different type 
of ROM, such as a type 29FO40 field programmable 
flash ROM available from Intel Corp. ROM 29 contains 
the system Initialization or boot code, an authentbation 
program, a random number generator program and an 
initial portion of the executive/loader programs, ROM 30 
contains the operating system program, the system driv- 
ers arid the remainder of the executive/loader programs 
as noted below. The mass storage unit contains the ap- 
plications, which include the game Image and sound da- 
ta, rules of game play and the like, and the signature 
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associated to each particular casino game. 
[0025] Fig. 3 Illustrates the authentication and appli- 
cation program Information in more detail. As seen In 
this figure, the authentication program stored in unalter- 
able ROM 29 comprises a message digest algorithm s 
component 32, a decryption algorithm component 33, 
and a decryption key component 34. The message di- 
gest algorithm component 32 stored in ROM 29 com- 
prises an exact copy of a hash function program routine 
used to originally compute a message digest from the io 
loadable game data set 36 In the manner described be- 
low. The decryption algorithm component 33 stored In 
ROM 29 comprises the algorithm required to decrypt 
any encrypted casino game data set signature using the 
decryption key component 34. is 
[0026] The decryption key component 34 comprises 
the decryption key that Is required to decrypt any of the 
encrypted signatures 37 In the manner described below 
during the authentication routine. 

[0027] Fig. 4 Illustrates the manner in whteh an en- ^ 
crypted data set signature 37 is generated. A loadable 
casino game data set 36 is processed using a hash func- 
tion 41 to generate a message digest 42 which is unique 
to the loadable game data set 36. The hash function em- 
ployed may be one of a nuniber of known hash func- 
tions. such as the MD2, MD4, and MD5 hash functions 
and the SHS hash function; or any other suitable hash 
function capable of producing a unique abbreviated bit 
string from a variable size Input data set. For further In- 
formation about these hash functions, reference should 30 
be had to the publication entitled "Answers To Frequent- 
ly Asked Questions About Today's Cryptography", Re- 
vision 2.0, Octobers, 1993. published by RSA Labora- 
tories, Redwood City, Califomia, and the publications 
listed in the references section thereof, the disclosures 35 
of whteh are hereby Incorporated by reference. After 
generation, the message digest 42 is then encrypted 
with an encryption algorithm 43 using a private encryp- 
tion key 44 to generate a signature 37 of the message 
digest. In the preferred embodiment, the two-key (pri- 40 
vate/public key) encryption technique developed by 
RSA Data Security, Inc., of Redwood City. Califomia, is 
used. This technique is disclosed and described in U.S. 
Patent Nos. 4,200,770,4,218,582 and 4,405,829. the 
disclosures of which are hereby incorporated by refer- 
ence. The signature 37 of the message digest 42 is then 
stored in the mass storage unit along with the loadable 
data set 36. 

[0028] Fig. 5 illustrates the authentication routine car- 
ried out In accordance with the invention, when the au- so 
thentication routine is called (see below), the loadable 
casino game data set 36 is transferred from the mass 
storage unit to main memory 13 (unless already there), 
and the message digest of casino game data set 36 Is 
computed using the message digest algorithm 32. Mes- ss 
sage digest algorithm 32 uses the same hash function 
41 as that used by the manufacturer to prepare the orig- 
inal message digest 42. The result is an unencrypted 



version 46 of the message digest computed from the 
casino game data set 36 currently present In the mass 
storage unit. The encrypted data set signature 37 is de- 
crypted using the public decryption key 34 matching the 
private key 44 used to originally encrypt the message 
digest 42 of the casino game data set 36. The message 
digest 47 decrypted with decryption key 34 is then com- 
pared with the message digest 46 computed from the 
casino game data set 36. If the two message digests 
match, then the casino game data set 36 is deemed au- 
thentic and game play may proceed. If there is no match, 
either the casino game data set 36 or the signature 37 
is deemed corrupted and not authentic. Game play is 
prohibited and appropriate actions can be taken: e.g. 
alerting a security employee using a suitable messaging 
system (an audible alarm, flashing lights, or a network 
message from the game console to a central security 
area). 

[0029] In order to ensure that the authentication rou- 
tine cannot be bypassed by tampering with the loader 
program stored in ROM 30, an initial part of the loader 
program is incorporated into unalterable ROM 29. This 
initial portion of the loader program requires that the au- 
thentication program be called prior to the initiation of 
any casino game play. Since this initial portion of the 
loader program is located in the unalterable ROM 29, 
and since no casino game play can occur until the par- 
ticular casino game application data set 36 is loaded into 
main memory 13, the authentication procedure cannot 
be bypassed by tampering with the software stored in 
ROM 30. 

[0030] Since authentication of the game data set 36 
and signature 37 is entrusted to the contents of ROM 
29, a procedure must be provided to verify the ROM 29 
contents. For this purpose, a message digest is com- 
puted for the authentteatlon program stored in ROM 29, 
and this message digest is stored in a secure manner 
with the casino operator or the gaming commission (or 
both) along with the hash function used to produce the 
message digest. This hash function may be the same 
hash function used to compute the message digest 42 
of the casino game data set or a different hash function. 
In this way, the authentteity of the ROM 29 can be easily 
checked in the same way as that now performed in prior 
art devtees: viz. computing the message digest directly 
from the ROM 29 and comparing the message digest 
thus computed with the custodial version of the mes- 
sage digest. If required by a given gaming commission 
or deemed desirable by a casino operator, the system 
may also display the message digest 42 of each partic- 
ular data set 36 or the encrypted signature version 37 
for auditing purposes. In addition, the system may trans- 
mit this information via networking subsystem 21 to an 
on-site or off-site remote location (such as the office of 
the gaming commission). The message digest dis- 
played or transmitted may comprise the decrypted ver- 
sion or the computed version (or both). 
[0031] The authentication procedure carried out by 
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means of the message digest program 32, decryption 
program 33 and decryption key 34 stored In unalterable 
ROM 29 in the manner described above is also used to 
authenticate the contents of all memory devices in the 
Fig. 1 system, such as the contents of ROM 30 (see Fig, 5 
2), the fixed data portions and program components 
stored in NV RAM 17 and the program and fixed data 
contents of any memory devices stored in the network- 
ing subsystem 21 , video subsystem 22, sound subsys- 
tem 23, PCI-ISA Interface 24, and GPIO unit 25. Each 
program or fixed data set stored in any memory device 
in any of these units has an associated signature, which 
is encrypted from a message digest of the original pro- 
gram or fixed data set using a hash function, which is 
preferably the same hash function used to prepare the 
message digest of the casino game data set. Prior to 
permitting any such program or fixed data set to partic- 
ipate in the system operation, that program or fixed data 
set is subjected to the authorization procedure to ensure 
that the message digest computed from the current ver- 
sion of the program or fixed data set matches the mes- 
sage digest decrypted from the encrypted signature as- 
sociated to the program or fixed data set In addition, the 
authentication procedure can be run on each such pro- 
gram or fixed data set at periodic or random intervals 
(on demand) in a manner essentially identical to that de- 
scribed above with respect to the casino game data set 
authentication procedure. As a consequence, the Integ- 
rity of all software in the systern is checlced prior to the 
use of that particular software in order to reveal any un- 
authorized changes to the software portion of the casino 
gaming system. 

[0032] An alternative approach to the secure loading 
of software into the system is depicted in FIG. 6. In this 
embodiment the basic input/output system (BIOS) soft- 
ware is stored in a ROM 50, the first of two ROMs mak- 
ing up the system boot ROM 14 (FIG. 1). The boot strap 
code, operating system code (OS), OS drivers and a se- 
cure loader are stored in a second ROM 52. An anchor 
application 54 including graphics and sound drivers, 
system drivers, money-handling software, a second se- 
cure loader, and a signature Is stored in the mass stor- 
age 18 (FIG. 1). 

[0033] When power is initially applied to the system 
on start-up, or when the system experiences a warm re- 
start, the CPU 12 will begin executing code from the BI- 
OS ROM 50. The BIOS is responsible for Initializing the 
motherboard and peripheral cards of the system. After 
the BIOS has completed the initialization, it jumps to the 
boot strap code in ROM 52 causing the boot strap to 
copy the OS, OS drivers, and the secure loader into 
RAM. 

[0034] Once in RAM, the OS is started and the secure 
loader stored in ROM 52 is used to load the anchor ap- 
plication 54 from disk 1 8. On disk, the anchor application 
has a signature that is used during the load to verify the 
validity of the anchor application. 
[0035] After the anchor application 54 is started, It will 



be used to load all other appltoations. The secure loader 
of the anchor application will check the validity of an ap- 
plication to be loaded by computing the signature and 
comparing it against the one stored on disk with the ap- 
plication as described above. 

[0036] An important advantage of the invention not 
found in 20 prior art systems is the manner in whrch the 
casino game data set can be authenticated. In prior art 
systems, authentication of the casino game data set is 
normally only done when a payout lying above a given 
threshold is required by the outcome of the game play, 
and this requires that the game be disabled while the 
ROM is physically removed and the ROM contents are 
verified, in systems incorporating the invention, the au- 
thenticity of a given casino game data set can be 
checked in a variety of ways. For example, the game 
data set 36 can be automatk^ally subjected to the au- 
thentication procedure illustrated in Fig. 5 each time the 
game is loaded from the mass storage unit into the main 
memory 13. Thus, as a player selects a casino game for 
game play In the system, the authenticity of that game 
actually stored in the mass storage unit Is automatically 
checked using the authentteation procedure described 
above without removing the ROM 29. Further, if desired, 
the authentication procedure may be initiated in re- 
sponse to the pull of a slot game handle, the detection 
of a coin insert, the payout of coins or Issuing of credit, 
or any other detectable event related to game play. The 
authenticity of a given casino game data set 36 can also 
be checked on demand, either locally at the game con- 
sole or remotely via a network, by providing a demand 
procedure. Such a procedure may be initiated, e.g. by 
providing a manually operable switch in the game con- 
sole, accessible only to authorized persons, for initiating 
the authentication routine. Alternatively, the Fig. 1 sys- 
tem may be configured to respond to a demand com- 
mand generated remotely (e.g. in a security area in the 
casino or off -site) and transmitted to the game console 
over a network to the networking subsystem 21 . 
[0037] Another advantage of the invention lies in the 
fact that the game data set storage capacity of a system 
incorporating the invention is not limited by the size of 
a ROM, but is rather dictated by the size of the mass 
storage unit. As a consequence, games using high res- 
olution, high motion video and high quality stereo sound 
can be designed and played on systems incorporating 
the invention. Also, since the mass storage unit need 
not be a read-only device, and need not be phystoally 
located in the game console, the invention affords great 
flexibility in game content, scheduling and changes. For 
example, to change the graphrc images in a partk^ular 
casino game or set of games, new casino game data 
sets can be generated along with new signatures and 
stored in the mass storage unit by either exchanging 
disk drives, replacing disks (for read only disk units), or 
writing new data to the media. In the networked mass 
storage application, these changes can be made to the 
files controlled by the network file server. Since the ca- 
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sino game data sets must pass the authentication pro- 
cedure test, either periodically or on demand, corrupted 
data sets cannot go undetected. Thus the invention 
opens up the field of electronic casino gaming systems 
to readily modifiable games with flexible displays and 5 
rules, without sacrificing the essential security of such 
systems. In fact, security Is greatly enhanced by the abil- 
ity of the Invention to authenticate all game data sets 
both regularly (for each handle pull) and at any time (on 
demand), without interfering with regular game play (un- io 
less no match occurs between the two forms of mes- 
sage digest). 

[0038] While the above provides a full and complete 
disclosure of the preferred embodiments of the inven- 
tion, various modifications, alternate constructions and is 
equivalents may be employed without departing from 2. 
the true spirit and scope of the invention. For example, 
while the RSA public/private key encryption technique 
is preferred (due to the known advantages of this tech- 
nique), a single, private key encryption technique may 20 
be employed, if desired. In a system using this tech- 
nique, the single key would be stored in ROM 29 in place 
of the public key 34. Also, the message digest 42 and 
signature 37 for a given application 36 need not be com- 
puted from the entire casino game data set. For exam- 25 
pie, for some casino games it may be desirable to pro- 
vide a fixed set of rules while pennitting future changes 3. 
in the casino game graphics, sound or both. For such 
casino games, it may be sufficient to compute the mes- 
sage digest 42 and signature 37 from only the rules por- so 
tion of the applrcations program 36. In other cases, it 
may be desirabie or convenient to maintain the casino 
game video and audio portions constant, while allowing 
future changes to the rules of game play. For casino 
games of this category, the message digest 42 and sig- 35 
nature 37 may be computed from the graphics and 
sound portions of the application program 36. It may al- 
so be desirable to connpute a message digest 42 and 
signature 37 from a subset of the rules, graphics or 
sound portions of a given applications program 36, or 40 
from some other subset taken from a given applications 
program 36. Therefore, the above should not be con- 
strued as limiting the scope of the invention, whtoh is 
defined by the appended claims. 



Claims 

4. 

1. A casino gaming apparatus, comprising: 

50 

a casino game console; 
a video display unit; 

a first memory (13) disposed in said casino 
game console; 

a second memory (18) comprising a read/write ss 
memory, said second memory having gaming 
data stored therein; and 
a processor (12) disposed in said casino game 



console and being operativety coupled to said 
video display unit, said first memory (13) and 
said second memory (1 8), 

said processor (12) causing said gaming 
data to be checked based on a comparison 
of data generated by said processor from 
said gaming data with data previously gen- 
erated from known gaming data, said proc- 
essor utilizing a hash function in checking 
said gaming data, and 
said processor (12) causing a remedial ac- 
tion to be taken based on said checking of 
said gaming data. 

A casino gaming apparatus as defined In claim 1 
wherein said processor (12) causes said gaming 
data to be checked by: 1) subjecting said gaming 
data to a one-way hash function to generate a first 
message digest, 2) decrypting an encrypted mes- 
sage digest previously generated by subjecting 
known gaming data to a one-way hash function to 
generate a decrypted message digest, and 3) com- 
paring said first message digest with said decrypted 
message digest. 

A casino gaming apparatus as defined in claim 1 , 

wherein said second memory (1 8) has a multi- 
gigabyte storage capacity and has encrypted g£mi- 
ing data stored therein and unencrypted gaming da- 
ta stored therein, said encrypted gaming data com- 
prising data relating to a casino game and said un- 
encrypted gaming data comprising data relating to 
a casino game, 

wherein said processor <12) causes said en- 
crypted gaming data to be decrypted to generate 
decrypted gaming data, 

wherein said processor (12) causes said un- 
encrypted gaming data to be transferred from said 
second memory (1 8) to said first memory (13), and 

wherein said processor (12) causes a check 
of said unencrypted data to be performed utilizing 
said decrypted gaming data and said unencrypted 
data after said unencrypted data has been trans- 
ferred from said second memory to said first mem- 
ory. 

A casino gaming apparatus as defined in claim 1 , 
wherein said second memory (18) has en- 
crypted gaming data stored therein and unencrypt- 
ed gaming data stored therein, said encrypted gam- 
ing data comprising data relating to a casino game 
and said unencrypted gaming data comprising data 
relating to a casino game, 

wherein said processor (12) causes said en- 
crypted gaming data to be decrypted to generate 
decrypted gaming data, 

wherein said processor (12) causes said un- 
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encrypted gaming data to be transferred from said 
second memory (18) to said first memory, and 

wherein said processor (12) causes a check 
of said unencrypted data to be performed utilizing 
said decrypted gaming data and said unencrypted s 
data after said unencrypted data has been trans* 
ferred from said second memory (18) to said first 
memory (13). 



5. A casino gaming apparatus as defined in claim 1 , io 

wherein said second memory (12) has en- 
crypted gaming data stored therein, said encrypted 
gaming data comprising data relating to a casino 
game. 

wherein said processor (12) causes said en- is 
crypted gaming data stored in said second memory 
(1 8) to be decrypted to generate decrypted gaming 
data, and 

wherein said processor (12) causes said 
checl< to be performed utilizing said decrypted gam- 20 
ing data. 

6. A casino gaming apparatus as defined In claim 1 , 

wherein said processor (12) causes said 
gaming data stored in said second memory to be 25 
transferred to said first memory (13), and 

wherein said processor causes said gaming 
data that was transferred from said second memory 
to said first memory to be checked. 

30 

7. A casino gaming apparatus as defined In claim 1 
wherein said processor (12) utilizes decryption In 
checking said gaming data. 

8. A casino gaming apparatus as defined In claim 1 35 
wherein said processor (12) causes a message to 

be generated based on said check performed by 
said processor. 

9. A casino gaming apparatus as defined in claim 1 , 40 

wherein said second memory (1 8) comprises 
a remote memory disposed in a location remote 
from said first memory (13), and 

wherein said casino gaming apparatus addir 
tlonally comprises a network data link. 

10. A casino gaming apparatus as defined in any of 
claims 1-9 wherein said second memory (18) has a 
multi-gigabyte storage capacity. 

50 

11. A casino gaming apparatus as defined in any of 
claims 1 -9 wherein said second memory (1 8) com- 
prises a disk memory. 

12. A casino gaming apparatus as defined in any of ss 
claims 1 -9 wherein said second memory (1 8) com- 
prises a magnetic disk memory. 



9 



EP 1 441 464 A1 



^18 




^25 


DISK 11 


NVRAM 




GP10 




STORAGEJI 











r19 



^ 

SOUND 
SUBSYSTEM 



23 



24 



DISK 
SUBSYSTEM 



22 



VIDEO 
SUBSYSTEM 



20 



21 



NETWORKING 
SUBSYSTEM 



13 



MAIN 
MEMORY 



28 



POI-ISA 



27 



BRIDGE 



TO /FROM 
NETWORK 



Fig. 1 



14 



SYSTEM 
BOOT 
ROM 



12 



MICROPROCESSOR 



ROM 29 
CONTENTS 



ROM 30 
CONTENTS 



SYSTEM 
INIT 
CODE 



AUTHENTICATION 
PROGRAM 



RANDOM 
NUMBER 
GENERATOR 
PROGRAM 



LOADER 
PROGRAM 
(PART 1) 



OPERATING 

SYSTEM 
PROGRAM 



SYSTEM 
DRIVERS 



EXECUTIVE 
LOADER 

PROGRAMS 
(PART 2) 



'1. 



MASS 
STORAGE 
CONTENTS 



LOADABLE 
DATA SET 
(APPLICATION 
PROGRAMS) 



SIGNATURES 



ROM 29 
AUTHENTICATION 
PROGRAM 

32 



34 



MESSAGE 

DIGEST 
PROGRAM 



DECRYPTION 
PROGRAM 



\^ DECRYPTION 
KEY 



Fig. 3 



Fig. 2 



10 



EP 1 441 464 A1 



y44 



PRIVATE 
KEY 



Fig. 4 



LOADABLE 
DATA SET 



1/ 



36 



HASH 
f=UNCnON 



I/" 



MESSAGE / 
DIGEST V 



42 



ENCRYPTION 
PROGRAM 



1/" 



SIGNATURE 



37 



STORE 
IN MASS 
STORAGE 
UNIT 



LOADABLE 
DATA SET 




HASH 
FUNCTION 




SIGNATURE 


~1 ^33 



'37 



DECRYPTION 
PROGRAM 



DECRYPTION 
KEY 



COMPUTED 
MESSAGE 
DIGEST 



DECRYPTED 
MESSAGE 
DIGEST 



1 



COMPARE 

ZD — 



/34 



Fig. 5 



MATCH 



{PERMIT GAME PLAY) 
NO MATCH 



(PROHIBIT GAME PLAY 



11 



EP 1 441 464 A1 



ROM 
50 



BIOS 



Fig. 6 



ROM 
52 



BOOT 
STRAP 



OS 



OS 
DRIVERS 



SECURE 
LOADER 



ANCHOR 
APPLICATION 
54 



GRAPHICS 
AND 
SOUND 
DRIVERS 



SYSTEM 
DRIVERS 



MONEY 
HANDUNG 



SECURE 
LOADER 



SIGNATURE 



12 



EP 1 441 464 A1 



European Patant 



EUROPEAN SEARCH REPORT 



AfipllcattanNuinlMr 

EP 63 ei 0136 



DOCUMENTS CONSIDERED TO BE RELEVANT 



CitatiiOT o> docunwnl wilh indcation, where appropriate, 
of n 



Relevant 
tedaim 



CLASanCAHON OF THE 
APPUCATWM trntiOJ) 



GB 2 121 569 A (BALLY HF6 CORP) 
21 Decenter 1983 (1983-12-21) 

* page 1. line 37 - page 4, line 27; 
figures 1-4 • 

US 4 727 544 A (PAJAK PHILLIP ET AL) 
23 February 1988 (1988-02-23) 

* abstract • 

* column 1, line 10 - column 3, line 65 * 

DAVIDA G I ET AL: "DEFENDING SYSTEMS 
AGAINST VIRUSES THROUGH CRYPTOGRAPHIC 
AUTHENTICATION" 

PROCEEDINGS OF THE SYNPOSIUN ON SECURITY 
AND PRIVACY. OAKLAND. HAY 1 • 3. 1989, 
WASHINGTON. IEEE COHP. SOC. PRESS. US. 
1 Hay 1989 (1989-05-01). pages 312-318. 

xpeeee4i247 

ISBN: e-8186-1939-2 

* page 312 * 

* page 316 - page 317 * 

BAUSPIESS F ET AL: 'REQUIREMENTS FOR 
CRYPTOGRAPHIC HASH FUNCTIONS" 
COMPUTERS & SECURITY. INTERNATIONAL 
JOURNAL DEVOTED TO THE STUDY OF TECHNICAL 
AND FINANCIAL ASPECTS OF CCMPUTER 
SECURITY. ELSEVIER SCIENCE PUBLISHERS. 
AMSTERDAM. NL. 
vol. 11, no. 5. 

1 Septentier 1992 (1992-09-61). pages 
427-437. XPeoe296996 
ISSN: 6167-4648 

* page 428 - page 429; figure 1 * 



1-12 



1-12 



1-12 



He4L9/6e 

H04L9/32 

A63F13/ie 

A63F13/ee 

Ge7F17/32 

G06F12/14 



1-12 



He4L 
G06F 
G07F 



ThopresAntseafchieport has been dmwn yplaraKelainis 



BERLIN 



18 May 2004 



Camerero Alvaro, F 



CATEGORY OF CrTED DOCUMENTS 



X t partieuiaT^ raievcmt ff taken alone 
Y : particutarly relevBnt if eon^fiMd w&fl 

documsnt <if the same eatagoiy 
A : toohnologiMdtaaclssfOund 

0:i - ' 
P:ii 



T : theory or principle underlying the i n wew lto n 
E : earlier potent dooument, but pubfiBhed on, c 



O: 
L 



fnthe 



a : member of tie sams polert fefniiy, 



13 



EP 1 441 464 A1 



ANNEX TO THE EUROPEAN SEARCH REPORT 

ON EUROPEAN PATENT APPUCAT10N NO. EP 03 01 0136 



TWs annex lists III* paterttairriymambereielding to IhepatsnlckKainw^ thsabowa-nranConadEuropsansMuch repot 

Tha members am as eontained oi the Euiopean Patent Offioe EOP He on 

The EuiopeanPaiant Office bh no way Bafate far these particulais which are meiely t^enfartlie|iuipas*alin(Dnnalion. 

18-05-2804 



Patent cio Rtm i o fll 
cited m search report 



Pubficaftion 
date 



Patent family Plibiortinw 
memberfB) date 


1432583 A 


17- 


-11- 


1983 


896722 Al 


01- 


•09- 


1983 


8302453 A 


17- 


•01- 


1984 


3316414 Al 


22- 


-12-1983 


211683 A 


13- 


-11-1983 


8405185 Al 


01- 


■09- 


1984 


2527359 Al 


25- 


-11- 


1983 


2533722 Al 


30- 


-03- 


1984 


1168870 B 


20- 


-05- 


1987 


8301708 A 


01- 


-12- 


1983 


831648 A 


14- 


-11- 


1983 


76671 A .8 


Oi- 


-06- 


1983 


8302671 A 


ls- 


-11- 


1984 



GB 2121569 



21-12-1983 



AU 
BE 
BR 
DE 
OK 
ES 
FR 
FR 
IT 
NL 
NO 
PT 
SE 



US 4727544 



23-02-1988 NONE 



8 

z 
o 

& Fcr more details about Ihis annex : see Official Journal of the European Patem Offioe, No. 1 2/82 



15 



This Page is Inserted by IFW Indexing and Scanning 
Operations and is not part of the Official Record 

BEST AVAILABLE IMAGES 

Defective images within this document are accurate representations of the original 
documents submitted by the appHcant. 

Defects in the images include but are not limited to the items checked: 

□ BLACK BORDERS 

□ IMAGE CUT OFF AT TOP, BOTTOM OR STOES 

□ FADED TEXT OR DRAWING 
ETbLURRED OR ILLEGIBLE TEXT OR DRAWING 

□ SKEWED/SLANTED IMAGES 

□ COLOR OR BLACK AND WHITE PHOTOGRAPHS 

□ GRAY SCALE DOCUMENTS 

^ LINES OR MARKS ON ORIGINAL DOCUMENT 

□ REFERENCE(S) OR EXHIBIT(S) SUBMITTED ARE POOR QUALITY 

□ OTHER: 

IMAGES ARE BEST AVAILABLE COPY. 
As rescanning these documents will not correct the image 
problems checked, please do not report these problems to 
the IFW Image Problem Mailbox. 



